Overview

overview

10

Static

static

3

51e5d03777...cs.exe

windows7-x64

10

51e5d03777...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    51e5d037779f1d977e0e2141afe9b4c0_NeikiAnalytics.exe

  • Size

    719KB

  • Sample

    240519-2szrfafc87

  • MD5

    51e5d037779f1d977e0e2141afe9b4c0

  • SHA1

    55387fe0b9c73868a07887d44e521b093a37a10a

  • SHA256

    2628e6909b79e8b70bef455feaadae30668140d8af6b848222817a6fd8e89eb5

  • SHA512

    4c4c8674c8d935bbdcf6fb9239010d70cf97a9c024c2c5dbdf548120d95aad5ccb37ddb4a7e92e1c5be3bd3532f56104df04bfd3ea56278bb4f08952501c6ecc

  • SSDEEP

    12288:n3C9yMo+S0L9xRnoq7H9xqYL5oeEF5rna9sUxg7udOxPJVSjYg8lcmJ1MZxEkTs6:SgD4bhoqLDqYLS7w4W

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      51e5d037779f1d977e0e2141afe9b4c0_NeikiAnalytics.exe

    • Size

      719KB

    • MD5

      51e5d037779f1d977e0e2141afe9b4c0

    • SHA1

      55387fe0b9c73868a07887d44e521b093a37a10a

    • SHA256

      2628e6909b79e8b70bef455feaadae30668140d8af6b848222817a6fd8e89eb5

    • SHA512

      4c4c8674c8d935bbdcf6fb9239010d70cf97a9c024c2c5dbdf548120d95aad5ccb37ddb4a7e92e1c5be3bd3532f56104df04bfd3ea56278bb4f08952501c6ecc

    • SSDEEP

      12288:n3C9yMo+S0L9xRnoq7H9xqYL5oeEF5rna9sUxg7udOxPJVSjYg8lcmJ1MZxEkTs6:SgD4bhoqLDqYLS7w4W

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks